felschr/nixos-config
1
1
Fork 0
Code Issues Pull requests Actions Packages Projects Releases Wiki Activity

refactor: update hardened.nix

Browse source
This commit is contained in:
Felix Schröter 2023-05-31 17:02:01 +02:00
parent e492b3e295
commit c79c125e4c
Signed by: felschr
GPG key ID: 671E39E6744C807D
1 changed files with 6 additions and 3 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

9
system/hardened.nix
View file

@ -3,13 +3,16 @@
with lib; {
imports = [ "${modulesPath}/profiles/hardened.nix" ];
# @TODO hardened kernel causes Bluetooth issues
boot.kernelPackages = mkOverride 900 pkgs.linuxPackages;
# Xbox Controller not working via Bluetooth if enabled
security.lockKernelModules = mkOverride 0 false;
security.lockKernelModules = mkOverride 900 false;
boot.loader.systemd-boot.editor = mkDefault false;
# scudo causes Firefox & Tor Browser segfaults
environment.memoryAllocator.provider = "libc";
environment.memoryAllocator.provider = mkOverride 900 "libc";
security.allowSimultaneousMultithreading = mkOverride 0 true;
security.allowSimultaneousMultithreading = mkOverride 900 true;
}